FIX: Access Token Handling, Shutdown Safety, and Connection Attribute Tests #266
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
… bewithgaurav/fix_segfault_cleanup_sql_failures
…s://github.com/microsoft/mssql-python into bewithgaurav/fix_segfault_cleanup_sql_failures
… bewithgaurav/fix_segfault_cleanup_sql_failures
There was a problem hiding this comment.
Pull Request Overview
This PR adds comprehensive test coverage for custom connection attributes, focusing on the attrs_before parameter functionality and implementing defensive fixes for ODBC driver segfaults.
- Adds extensive test coverage for the
attrs_beforeparameter with various data types and edge cases - Implements defensive protection against ODBC driver crashes with short access tokens (< 32 bytes)
- Adds tests for Python shutdown scenarios that previously caused segfaults with SQL syntax errors
Reviewed Changes
Copilot reviewed 5 out of 5 changed files in this pull request and generated 4 comments.
Show a summary per file
| File | Description |
|---|---|
| tests/test_008_auth.py | Adds test for access token length validation to prevent ODBC driver crashes |
| tests/test_005_connection_cursor_lifecycle.py | Adds comprehensive tests for cursor cleanup scenarios during Python shutdown |
| tests/test_003_connection.py | Adds extensive test coverage for attrs_before parameter with various data types and configurations |
| mssql_python/pybind/ddbc_bindings.cpp | Implements Python shutdown detection and safe cleanup to prevent segfaults |
| mssql_python/pybind/connection/connection.cpp | Adds access token length validation and secure memory handling for sensitive data |
Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.
| cursor.execute("syntax error") | ||
| # Don't explicitly close cursor/connection - let Python shutdown handle cleanup | ||
| print("Script completed, shutting down...") # This would NOT print anyways |
There was a problem hiding this comment.
The comment contains a grammatical error. Should be 'This would NOT print anyway' (without the 's' in 'anyways').
Suggested change
| print("Script completed, shutting down...") # This would NOT print anyways | |
| print("Script completed, shutting down...") # This would NOT print anyway |
Comment on lines
688
to
689
| } catch (...) { | ||
| std::cerr << "Error occurred while checking Python finalization state." << std::endl; |
There was a problem hiding this comment.
The error message is too generic and doesn't provide enough context about what specific error occurred. Consider logging the actual exception details or being more specific about the type of error.
Suggested change
| } catch (...) { | |
| std::cerr << "Error occurred while checking Python finalization state." << std::endl; | |
| } catch (const std::exception& e) { | |
| std::cerr << "Error occurred while checking Python finalization state: " << e.what() << std::endl; | |
| // Be conservative - don't assume shutdown on any exception | |
| // Only return true if we're absolutely certain Python is shutting down | |
| return false; | |
| } catch (...) { | |
| std::cerr << "Unknown error occurred while checking Python finalization state." << std::endl; |
Comment on lines
188
to
191
| if (attribute == SQL_COPT_SS_ACCESS_TOKEN && buffer.size() < 32) { | ||
| LOG("Access token too short (< 32 bytes) - protecting against ODBC driver crash"); | ||
| return SQL_ERROR; // Return error instead of letting ODBC crash | ||
| } |
There was a problem hiding this comment.
The function returns SQL_ERROR but doesn't set any specific error message that can be retrieved by the caller. This makes debugging difficult. Consider setting a more descriptive error state or returning a custom error code.
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
📊 Code Coverage Report
Diff CoverageDiff: main...HEAD, staged and unstaged changes
Summary
📋 Files Needing Attention📉 Files with overall lowest coverage (click to expand)mssql_python.ddbc_bindings.py: 68.5%
mssql_python.pybind.ddbc_bindings.cpp: 69.4%
mssql_python.pybind.connection.connection_pool.cpp: 78.9%
mssql_python.cursor.py: 79.6%
mssql_python.pybind.connection.connection.cpp: 80.1%
mssql_python.connection.py: 81.7%
mssql_python.helpers.py: 84.7%
mssql_python.auth.py: 85.3%
mssql_python.type.py: 86.8%
mssql_python.pooling.py: 88.8%🔗 Quick Links
|
bewithgaurav
changed the title
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Work Item / Issue Reference
Summary
This pull request introduces important safety and robustness improvements to the handling of ODBC connection attributes, particularly focusing on access token authentication and defensive programming against known driver bugs. It also adds comprehensive test coverage for these changes, ensuring correct behavior and memory safety in various edge cases.
Defensive fixes and error handling
Connection::setAttribute(C++), which blocks access tokens shorter than 32 bytes to prevent a known crash in Microsoft ODBC Driver 18. An informative error is raised if a short token is detected.SqlHandle::~SqlHandleto avoid callingSQLFreeHandleduring Python interpreter shutdown, preventing potential crashes or undefined behavior.Test coverage for connection attributes
tests/test_003_connection.pyto verify the behavior of theattrs_beforeparameter, including handling of supported and unsupported attribute types, invalid keys, empty dictionaries, multiple attributes, memory safety with binary data, and compatibility with connection pooling and autocommit.tests/test_008_auth.pyto verify the defensive fix for short access tokens, ensuring that tokens under 32 bytes are blocked and legitimate tokens are allowed (with expected authentication errors if invalid). These tests run in subprocesses to isolate potential segfaults.Minor test cleanups